Great news. That's my one thing for today...don't want to shoot way past my goal, so I wonder what I can do for the rest of the day? :) On Thu, Apr 8, 2010 at 8:38 AM, John Smith <john40855@xxxxxxxxx> wrote: > Forget to reply all the last time, Dan found it, there was an extra line in > system-auth on the problem node. Thanks Dan. > > > On Thu, Apr 8, 2010 at 8:24 AM, Dan Norris <dannorris@xxxxxxxxxxxxx>wrote: > >> Since you can login to rac2 with a different user account, maybe you could >> try doing "su - oracle" from the login you have to confirm the password is >> what you think it is? Sounds like it could just be as simple as having the >> wrong password. Seems less likely, but you could check the files in >> /etc/pam.d (especially login and system-auth) to confirm they match between >> the nodes too. >> >> Dan >> >> >> On Thu, Apr 8, 2010 at 8:05 AM, John Smith <john40855@xxxxxxxxx> wrote: >> >>> This shows in /var/log/secure.: >>> >>> Apr 8 05:41:17 rac2 sshd[8421]: pam_access(sshd:account): access denied >>> for user `oracle' from `rac1' >>> Apr 8 05:41:17 rac2 sshd[8421]: Failed password for oracle from >>> 192.268.2.1 port 17143 ssh2 >>> Apr 8 05:41:17 rac2 sshd[8422]: fatal: Access denied for user oracle by >>> PAM account configuration >>> >>> On Wed, Apr 7, 2010 at 8:34 PM, Matthew Zito <mzito@xxxxxxxxxxx> wrote: >>> >>>> Also, maybe one of your nodes has the user shell as sbin/nologin? Or >>>> has the account with no password and pam is preventing a login? >>>> >>>> An strafe of your sshd process will give you some useful data. >>>> >>>> Matt >>>> >>>> >>>> >>>> On Apr 7, 2010, at 9:30 PM, "Bobak, Mark" <Mark.Bobak@xxxxxxxxxxxx> >>>> wrote: >>>> >>>> Ugh, it’s 9:15pm, and I’m just now heading home, so, brain is a bit >>>> fried. >>>> >>>> >>>> >>>> First, I don’t suppose you’re installing 11gR2 Clusterware? If you are, >>>> there’s a “SSH Connectivity” button that you click, and Oracle will set >>>> everything up for you. >>>> >>>> >>>> >>>> Otherwise, check the log files. Anything in /var/log/secure? >>>> >>>> >>>> >>>> Try starting sshd in the foreground with the ‘-d’ option to turn on >>>> debugging, and then attempt a login. >>>> >>>> >>>> >>>> Hope that helps, >>>> >>>> >>>> >>>> -Mark >>>> >>>> >>>> >>>> *From:* oracle-l-bounce@xxxxxxxxxxxxx [mailto: >>>> oracle-l-bounce@xxxxxxxxxxxxx] *On Behalf Of *John Smith >>>> *Sent:* Wednesday, April 07, 2010 7:07 PM >>>> *To:* <oracle-l@xxxxxxxxxxxxx>oracle-l@xxxxxxxxxxxxx >>>> *Subject:* rac user equivalence >>>> >>>> >>>> >>>> Not precisely oracle, but related. Trying to set up user equivalence on >>>> redhat 5. When I ssh from node 2 to node 1, connecting as oracle, it works >>>> fine, no problems. >>>> >>>> But when I ssh from node 1 to node 2 as oracle, it immediately closes >>>> the connection after entering the password. This happens no matter what >>>> user id I connect from to the oracle account. >>>> >>>> I can ssh to other accounts on rac2, but not the oracle account. >>>> >>>> ssh_config and sshd_config are identical, as are hosts.allow and >>>> hosts.deny. Anyone have any ideas? >>>> >>>> [root@rac2 ssh]# ssh oracle@rac1 >>>> oracle@rac1's password: >>>> Last login: Wed Apr 7 15:48:24 2010 from rac2 >>>> [oracle@rac1 ~]$ >>>> >>>> [oracle@rac1 ~]$ ssh oracle@rac2 >>>> oracle@rac2's password: >>>> Connection closed by 192.168.2.223 >>>> >>>> [root@rac1 ~]$ ssh oracle@rac2 >>>> oracle@rac2's password: >>>> Connection closed by 192.168.2.223 >>>> >>>> [root@rac1 ~]$ ssh johns@rac2 >>>> johns@rac2's password: >>>> [johns@rac2 ~]$ >>>> >>>> >>> >> >